CN109428823A - The system and method for the NAT resource-adaptive distribution conversion of more Data Plane is realized based on NFV - Google Patents

The system and method for the NAT resource-adaptive distribution conversion of more Data Plane is realized based on NFV Download PDF

Info

Publication number
CN109428823A
CN109428823A CN201710722586.6A CN201710722586A CN109428823A CN 109428823 A CN109428823 A CN 109428823A CN 201710722586 A CN201710722586 A CN 201710722586A CN 109428823 A CN109428823 A CN 109428823A
Authority
CN
China
Prior art keywords
data plane
nat
nat resource
adaptive distribution
resource
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201710722586.6A
Other languages
Chinese (zh)
Other versions
CN109428823B (en
Inventor
陆凯兵
胡森标
逯利军
钱培专
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Certusnet Information Technology Co Ltd
Original Assignee
Shanghai Certusnet Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Certusnet Information Technology Co Ltd filed Critical Shanghai Certusnet Information Technology Co Ltd
Priority to CN201710722586.6A priority Critical patent/CN109428823B/en
Publication of CN109428823A publication Critical patent/CN109428823A/en
Application granted granted Critical
Publication of CN109428823B publication Critical patent/CN109428823B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/02Topology update or discovery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2521Translation architectures other than single NAT servers
    • H04L61/2532Clique of NAT servers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/256NAT traversal

Abstract

The present invention relates to a kind of systems of NAT resource-adaptive distribution that more Data Plane are realized based on NFV, including EMS management module, vBras virtual management module, SDN switch module and SDN controller module, the invention also includes a kind of methods of NAT resource-adaptive distribution conversion that more Data Plane are realized using the system.Using the system and method for the NAT resource-adaptive distribution conversion for realizing more Data Plane based on NFV of the invention, NAT resource can be uniformly distributed according to Data Plane number, the assigning process is only handled when Control Plane Plane Initialisation simultaneously, therefore when Data Plane handles flow, it will not be had an impact to NAT session flow table speed is established, the number of Data Plane can also dynamically be changed using the system, and guarantee that there is a situation where flow interrupts, the programming of this method is simple simultaneously, it can be effectively added in actual software engineering project, it ensure that the dynamic expansion of empty machine professional ability, with wider application range.

Description

The system of the NAT resource-adaptive distribution conversion of more Data Plane is realized based on NFV And method
Technical field
It is more based on NFV realization that the present invention relates to the communications field more particularly to network address translation fields, in particular to one kind The system and method for the NAT resource-adaptive distribution conversion of Data Plane.
Background technique
Global communication industry had begun into new historical stage, i.e. software defined network stage, this stage at present The change for being mainly technically characterized by the network architecture be embodied in network control that is, from vertical Closed Architecture steering horizontal open architecture System with forward separate, many aspects, the representative art such as the decoupling of network element software and hardware and virtualization, the cloud of network and ITization have SDN, NFV and cloud computing.The arriving in this stage provides powerful weapon for the in-depth transition of telecommunication network, not only brings Historic opportunity to develop, and bring unprecedented severe challenge.
Under more Data Plane scenes, there is a preposition SDN switch to be responsible for flow load sharing to each Data Plane.According to NAT realization principle, when flow is from user side (private network) to network side (public network) direction, pass through the preposition SDN Interchanger is responsible for flow load sharing to each Data Plane, if flow leads to some Data Plane by interchanger, NAT module can generate the forward and reverse flow table of NAT on the Data Plane, at this time if backhaul traffic is also by the Data Plane can then hit reversed flow table and thus allow for correctly NAT conversion.If backhaul traffic leads to other by interchanger Data Plane will lead to NAT business since, there is no NAT flow table, message can not be correctly processed on other Data Plane It is obstructed.
SDN switch mainstream technology is OpenFlow, it proposes the concept of flow table to traditional two-layer retransmitting table, three layers Routing table is abstracted, so that decision of the data packet in repeating process is more flexible.But SDN flow table is advised at present Mould is all little, generally 2k or so, this just seriously limits NAT resource flexible allocation on Data Plane.
Summary of the invention
The purpose of the present invention is overcoming the above-mentioned prior art, provide it is a kind of can be by NAT resource according to Data Plane number is uniformly distributed, will not have an impact to NAT session flow table speed is established, stable and reliable working performance, being applicable in model Enclose the system and method for the relatively broad NAT resource-adaptive distribution conversion that more Data Plane are realized based on NFV.
To achieve the goals above, of the invention to realize that the NAT resource-adaptive distribution of more Data Plane turns based on NFV The system and method changed is as follows:
This realizes the system of the NAT resource-adaptive distribution conversion of more Data Plane based on NFV, is mainly characterized by, The system includes:
EMS management module, to the port configuration of IP G and Data Plane corresponding relationship;
VBras virtual management module is connected by gateway interface with the EMS management module, and Data is used for The reception and processing of flow load in Plane;
SDN switch module is connected, to forward with the vBras virtual management module by exchange interface Flow load;
SDN controller module is connected by control interface with the EMS management module, and receive the port IPG and The corresponding relationship of Data Plane, and be connected by switch port with the SDN controller module, to complete this The configuration of SDN switch module.
This realizes the vBras virtual management of the system of the NAT resource-adaptive distribution conversion of more Data Plane based on NFV Module further includes Message processing submodule, which passes through exchange interface and the SDN switch module It is connected, the reception and processing for flow load in Data Plane.
This realizes the SDN controller module of the system of the NAT resource-adaptive distribution conversion of more Data Plane based on NFV Including business flow list unit, and the configuration according to the business flow list unit to complete the SDN switch module.
This realizes the Message processing submodule of the system of the NAT resource-adaptive distribution conversion of more Data Plane based on NFV Block further includes a NAT resource table unit and NAT flow table unit, and the NAT flow table unit and business flow list unit correspond.
A kind of system realization using the NAT resource-adaptive distribution conversion for realizing more Data Plane based on NFV is more Data Plane NAT resource-adaptive distribution conversion method, be mainly characterized by, the method the following steps are included:
(1) Data Plane quantity, IP address and the correlation DPID information in vBras virtual management module are obtained;
(2) the NAT resource is uniformly issued to after the impartial cutting of NAT resource progress according to the Data Plane quantity It is configured in each Data Plane and configures SDN switch;
(3) according to the NAT resource after the cutting, flow load is shared by the SDN switch to each Data In Plane;
(4) each Data Plane receives corresponding backhaul traffic, carries out NAT conversion.
The more Data Plane of the realization NAT resource-adaptive distribution conversion method the step of (2) further comprise It handles below:
When the variation of Data Plane quantity, NAT business module will discharge the NAT resource and to its cutting again.
In the step of method of the NAT resource-adaptive distribution conversion of the more Data Plane of the realization (2), this is evenly distributed When process occurs over just Control Plane Plane Initialisation.
The flow load and backhaul traffic of the method for the NAT resource-adaptive distribution conversion of the more Data Plane of the realization are logical The path crossed is identical.
The configuration of SDN switch of the method for the NAT resource-adaptive distribution conversion of the more Data Plane of the realization includes It handles below:
IP address and correlation DPID information in multiple Data Plane are received by the SDN controller, and EMS is combined to manage The corresponding relationship of the port IPG and Data Plane that reason system issues, generates final flow table.
Using the invention based on NFV realize more Data Plane the distribution conversion of NAT resource-adaptive system and NAT resource can be uniformly distributed according to Data Plane number for method, while the assigning process is only in Control Plane It is handled when Plane Initialisation, therefore when Data Plane handles flow, it will not be to establishing NAT session flow table speed It has an impact, can also dynamically change the number of Data Plane using the system, and guarantee not there is a situation where flow interrupt, The programming of this method is simple simultaneously, can be effectively added in actual software engineering project, ensure that empty machine business energy The dynamic expansion of power has wider application range.
Detailed description of the invention
Fig. 1 is the stream of the system of the NAT resource-adaptive distribution conversion of the invention that more Data Plane are realized based on NFV Measure repeating process schematic diagram.
Specific embodiment
It is further to carry out combined with specific embodiments below in order to more clearly describe technology contents of the invention Description.
NAT (Network Address Translation, the network that more Data Plane are realized based on NFV of the invention Address conversion) resource-adaptive distribution conversion system and method it is as follows:
This realizes the system of the NAT resource-adaptive distribution conversion of more Data Plane based on NFV, is mainly characterized by, The system includes:
EMS management module, to the port configuration of IP G and Data Plane corresponding relationship;
VBras virtual management module is connected by gateway interface with the EMS management module, and Data is used for The reception and processing of flow load in Plane;
SDN switch module is connected, to forward with the vBras virtual management module by exchange interface Flow load;
SDN controller module is connected by control interface with the EMS management module, and receive the port IPG and The corresponding relationship of Data Plane, and be connected by switch port with the SDN controller module, to complete this The configuration of SDN switch module.
This realizes the vBras virtual management of the system of the NAT resource-adaptive distribution conversion of more Data Plane based on NFV Module further includes Message processing submodule, which passes through exchange interface and the SDN switch module It is connected, the reception and processing for flow load in Data Plane.
This realizes the SDN controller module of the system of the NAT resource-adaptive distribution conversion of more Data Plane based on NFV Including business flow list unit, and the configuration according to the business flow list unit to complete the SDN switch module.
This realizes the Message processing submodule of the system of the NAT resource-adaptive distribution conversion of more Data Plane based on NFV Block further includes a NAT resource table unit and NAT flow table unit, and the NAT flow table unit and business flow list unit correspond.
A kind of system realization using the NAT resource-adaptive distribution conversion for realizing more Data Plane based on NFV is more Data Plane NAT resource-adaptive distribution conversion method, be mainly characterized by, the method the following steps are included:
(1) Data Plane quantity, IP address and the correlation DPID information in vBras virtual management module are obtained;
(2) the NAT resource is uniformly issued to after the impartial cutting of NAT resource progress according to the Data Plane quantity It is configured in each Data Plane and configures SDN switch;
(3) according to the NAT resource after the cutting, flow load is shared by the SDN switch to each Data In Plane;
(4) each Data Plane receives corresponding backhaul traffic, carries out NAT conversion.
The more Data Plane of the realization NAT resource-adaptive distribution conversion method the step of (2) further comprise It handles below:
When the variation of Data Plane quantity, NAT business module will discharge the NAT resource and to its cutting again.
In the step of method of the NAT resource-adaptive distribution conversion of the more Data Plane of the realization (2), this is evenly distributed When process occurs over just Control Plane Plane Initialisation.
The flow load and backhaul traffic of the method for the NAT resource-adaptive distribution conversion of the more Data Plane of the realization are logical The path crossed is identical.
The configuration of SDN switch of the method for the NAT resource-adaptive distribution conversion of the more Data Plane of the realization includes It handles below:
IP address and correlation DPID information in multiple Data Plane are received by the SDN controller, and EMS is combined to manage The corresponding relationship of the port IPG and Data Plane that reason system issues, generates final flow table.
In a specific embodiment, referring to Fig. 1, it is the NAT of the invention for realizing more Data Plane based on NFV The flow of the system and method for resource-adaptive distribution conversion forwards schematic diagram, in flow forwarding schematic diagram, there are two Data Plane exists, and service port1 (CPG1, IPG1) is user side, and service port4 (CPG4, IPG4) is net Network side.When customer flow enters from CPG1, SDN switch determines that message is sent to Data according to last of message source mac Plane-1 or Data Plane-2, when network side flow enters from CPG4, SDN switch according to message destination IP most Latter position determines that message is sent to Data Plane-1 or Data Plane-2.
NAT business module on CP can distribute one piece of dedicated NAT address resource for each Data Plane, such as in figure The corresponding NAT resource of Data Plane-1 is IPPOOL1, to guarantee that backhaul traffic also walks Data Plane-1, the NAT module of CP It needs that SDN controller, the flow that destination IP belongs to IPPOOL1 is notified to need to lead on Data Plane-1.
In another specific embodiment, the NAT resource-adaptive distribution conversion of more Data Plane should be realized based on NFV Method in NAT business module processing the following steps are included:
(2.1) information of the Data Plane quantity and correlation DPID that are currently configured is obtained from vBras virtual management module;
(2.2) cutting is carried out to NAT resource based on Data Plane quantity, issues and be configured to each Data Plane, simultaneously When the variation of Data Plane quantity, NAT business module can first discharge original resource, and carry out cutting again to NAT resource.
(2.3) based on the resource of cutting, SDN controller is notified to issue corresponding flow table, so that control backhaul traffic also passes through Cross the same Data Plane.
This realizes the SDN controller packet in the method for the NAT resource-adaptive distribution conversion of more Data Plane based on NFV It includes following processing: receiving the information (IP and DPID) that NAT module is sent in Control plane, manage system in combination with EMS The corresponding relationship of IPG (inside) port and Data Plane that system issues generates final flow table, configures SDN switch (purpose IP, IPG (inside) port).
This realizes the EMS network management interface in the method for the NAT resource-adaptive distribution conversion of more Data Plane based on NFV Including following processing: having the configuration of the relationship of Data Plane and internal port in EMS system, management system holds IPG (inside) Mouth relationship corresponding with Data Plane is handed down to SDN controller.
This realizes the Data Plane in the method for the NAT resource-adaptive distribution conversion of more Data Plane based on NFV Message includes following processing:
(3.1) the NAT configuration rule that Control Plane is issued is received, NAT resource table is generated;
(3.2) during user is online, DPID information is uploaded to Control Plane by ipstack module;
(3.3) when customer flow passes through Data Plane, corresponding NAT flow table is generated.
Using the invention based on NFV realize more Data Plane the distribution conversion of NAT resource-adaptive system and NAT resource can be uniformly distributed according to Data Plane number for method, while the assigning process is only in Control Plane It is handled when Plane Initialisation, therefore when Data Plane handles flow, it will not be to establishing NAT session flow table speed It has an impact, can also dynamically change the number of Data Plane using the system, and guarantee not there is a situation where flow interrupt, The programming of this method is simple simultaneously, can be effectively added in actual software engineering project, ensure that empty machine business energy The dynamic expansion of power has wider application range.
In this description, the present invention is described with reference to its specific embodiment.But it is clear that can still make Various modifications and alterations are without departing from the spirit and scope of the invention.Therefore, the description and the appended drawings should be considered as illustrative And not restrictive.

Claims (9)

1. a kind of system for the NAT resource-adaptive distribution conversion for realizing more Data Plane based on NFV, which is characterized in that institute The system stated includes:
EMS management module, to the port configuration of IP G and Data Plane corresponding relationship;
VBras virtual management module is connected by gateway interface with the EMS management module, in Data Plane The reception and processing of flow load;
SDN switch module is connected, to converting flow with the vBras virtual management module by exchange interface Load;
SDN controller module is connected with the EMS management module by control interface, and receives the port IPG and Data The corresponding relationship of Plane, and be connected by switch port with the SDN controller module, to complete SDN exchange The configuration of machine module.
2. the NAT resource-adaptive distribution conversion according to claim 1 for realizing more Data Plane based on NFV is System, which is characterized in that the vBras virtual management module further includes Message processing submodule, and the Message processing submodule is logical It crosses exchange interface to be connected with the SDN switch module, the reception and processing for flow load in Data Plane.
3. the NAT resource-adaptive distribution conversion according to claim 1 for realizing more Data Plane based on NFV is System, which is characterized in that the SDN controller module includes business flow list unit, and according to the business flow list unit to complete At the configuration of the SDN switch module.
4. the NAT resource-adaptive distribution conversion according to claim 2 for realizing more Data Plane based on NFV is System, which is characterized in that the Message processing submodule further includes a NAT resource table unit and NAT flow table unit, NAT stream Table unit and business flow list unit correspond.
5. a kind of side for the NAT resource-adaptive distribution conversion for realizing more Data Plane using system described in claim 1 Method, which is characterized in that the method the following steps are included:
(1) Data Plane quantity, IP address and the correlation DPID information in vBras virtual management module are obtained;
(2) the NAT resource is uniformly issued to after the impartial cutting of NAT resource progress by configuration according to the Data Plane quantity Into each Data Plane and configure SDN switch;
(3) according to the NAT resource after the cutting, flow load is shared by the SDN switch into each Data Plane;
(4) each Data Plane receives corresponding backhaul traffic, carries out NAT conversion.
6. the method for the NAT resource-adaptive distribution conversion according to claim 5 for realizing more Data Plane, feature It is, the step (2) further comprises following processing:
When the variation of Data Plane quantity, NAT business module will discharge the NAT resource and to its cutting again.
7. the method for the NAT resource-adaptive distribution conversion according to claim 5 for realizing more Data Plane, feature It is, in the step (2), when this evenly distributes process and occurs over just Control Plane Plane Initialisation.
8. the method for the NAT resource-adaptive distribution conversion according to claim 5 for realizing more Data Plane, feature It is, the path that the flow load and backhaul traffic pass through is identical.
9. the method for the NAT resource-adaptive distribution conversion according to claim 5 for realizing more Data Plane, feature It is, the configuration of the SDN switch includes following processing:
IP address and correlation DPID information in multiple Data Plane are received by the SDN controller, and combine EMS management system The corresponding relationship of the port IPG and Data Plane that system issues, generates final flow table.
CN201710722586.6A 2017-08-22 2017-08-22 System and method for realizing multi-Data Plane NAT resource self-adaptive allocation conversion based on NFV Active CN109428823B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710722586.6A CN109428823B (en) 2017-08-22 2017-08-22 System and method for realizing multi-Data Plane NAT resource self-adaptive allocation conversion based on NFV

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710722586.6A CN109428823B (en) 2017-08-22 2017-08-22 System and method for realizing multi-Data Plane NAT resource self-adaptive allocation conversion based on NFV

Publications (2)

Publication Number Publication Date
CN109428823A true CN109428823A (en) 2019-03-05
CN109428823B CN109428823B (en) 2021-06-04

Family

ID=65497628

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710722586.6A Active CN109428823B (en) 2017-08-22 2017-08-22 System and method for realizing multi-Data Plane NAT resource self-adaptive allocation conversion based on NFV

Country Status (1)

Country Link
CN (1) CN109428823B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102970388A (en) * 2012-11-19 2013-03-13 北京奇虎科技有限公司 Method and system for managing outer net access
US8879392B2 (en) * 2012-04-26 2014-11-04 Hewlett-Packard Development Company, L.P. BGP security update intercepts
CN104135446A (en) * 2014-07-15 2014-11-05 武汉绿色网络信息服务有限责任公司 System and method of implementing transition from IPv4 (Internet Protocol Version4) to IPv6 (Internet Protocol Version6) based on SDN (Software Defined Network)
CN106105165A (en) * 2014-03-25 2016-11-09 思科技术公司 There is the dynamic service chain of network address translation detection

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8879392B2 (en) * 2012-04-26 2014-11-04 Hewlett-Packard Development Company, L.P. BGP security update intercepts
CN102970388A (en) * 2012-11-19 2013-03-13 北京奇虎科技有限公司 Method and system for managing outer net access
CN106105165A (en) * 2014-03-25 2016-11-09 思科技术公司 There is the dynamic service chain of network address translation detection
CN104135446A (en) * 2014-07-15 2014-11-05 武汉绿色网络信息服务有限责任公司 System and method of implementing transition from IPv4 (Internet Protocol Version4) to IPv6 (Internet Protocol Version6) based on SDN (Software Defined Network)

Also Published As

Publication number Publication date
CN109428823B (en) 2021-06-04

Similar Documents

Publication Publication Date Title
EP3355553B1 (en) Reliable load-balancer using segment routing and real-time application monitoring
KR101303718B1 (en) Method and system for virtual machine networking
CN105681075B (en) Network Management System based on mixing cloud platform
Korilis et al. Capacity allocation under noncooperative routing
WO2015109803A1 (en) Load balancing method and system
CN104468358A (en) Message forwarding method and device of distributive virtual switch system
EP3063903A1 (en) Method and system for load balancing at a data network
CN106059915A (en) System and method for implementing limitation of north-south traffic of tenants based on SDN controller
CN104618244A (en) SDN network and traditional IP network intercommunicating method and system
CN103685009A (en) Data packet processing method and system as well as controller
CN110417924A (en) Message processing method and distributed apparatus in distributed apparatus
CN100502329C (en) Ethernet exchanger and its service processing method
US10404597B2 (en) Virtual horizontally-scalable packet broker systems and methods for distribution of session-based network traffic
CN1312889C (en) Single address traffic distributor of cluster network
CN106712988A (en) Virtual network management method and device
Yang et al. Libera for programmable network virtualization
CN105391635A (en) Network virtualization method based on software defined network (SDN)
WO2020134017A1 (en) Sdn-based vpn traffic scheduling method and sdn-based vpn traffic scheduling system
CN113395212B (en) Network device, method of operating the same, and non-transitory computer readable medium
CN103957157A (en) Route method for network interface to define forwarding rule
CN107508736B (en) A kind of Internet framework of multi-service convergence access
WO2017084228A1 (en) Method for managing traffic item in software-defined networking
Burakowski et al. Virtualized network infrastructure supporting co-existence of Parallel Internets
CN102647359B (en) Method for implementing network bridge IGMP (internet group management protocol) Snooping based on DSA TAG (digital signature algorithm tag) and user-defined protocol stack
WO2021218627A1 (en) Communication method and related device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant